Skip to main content
Loading…
    CVE-2024-5639 — The User Profile Picture plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.6.1 via the 'rest_api_change_profile_image' function due — CVE Database · The Intelligence Room